Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/813821-24f4-485f-9c4b-433403d30a83/1/7EHP4gKEE7dyRHnyezA7rARwzg4.roa
File: 7EHP4gKEE7dyRHnyezA7rARwzg4.roa (raw, json)
Hash identifier: A9eLW0BKDm/72rHmvekmA3J2Otl+QKVYlb8Izu+0RTo=
Subject key identifier: EC:41:CF:E2:02:84:13:B7:72:44:79:F2:7B:30:3B:AC:04:70:CE:0E
Certificate issuer: /CN=349c02b30adbf10f71f9be0f4644424498263df3
Certificate serial: 018CC8014C62338A228813E38F4E8657FC4A
Authority key identifier: 34:9C:02:B3:0A:DB:F1:0F:71:F9:BE:0F:46:44:42:44:98:26:3D:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJwCswrb8Q9x-b4PRkRCRJgmPfM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/813821-24f4-485f-9c4b-433403d30a83/1/7EHP4gKEE7dyRHnyezA7rARwzg4.roa
Signing time: Tue 02 Jan 2024 02:29:37 +0000
ROA not before: Tue 02 Jan 2024 02:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56674
IP address blocks: 91.226.150.0/24 maxlen: 24
91.226.148.0/24 maxlen: 24
91.226.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:4c:62:33:8a:22:88:13:e3:8f:4e:86:57:fc:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349c02b30adbf10f71f9be0f4644424498263df3
Validity
Not Before: Jan 2 02:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec41cfe2028413b7724479f27b303bac0470ce0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:76:7f:d0:42:7b:0c:36:8b:2a:c1:39:f4:2a:
d4:5a:ad:7f:33:0d:b0:38:46:d5:b1:48:67:60:48:
39:14:ed:36:5a:a7:b0:fd:7b:f7:d8:69:3d:28:30:
ed:d7:ca:41:97:07:46:ee:0b:3e:6c:27:8e:6a:fb:
2c:3f:3e:c5:ad:c0:5e:92:82:3d:9a:4a:b4:ab:ae:
db:c6:e8:29:f1:06:5d:fb:a8:75:c8:ef:08:43:bc:
a0:fe:8d:63:47:52:a3:f9:4d:7e:75:31:1a:1c:78:
e8:79:d0:4b:9f:a0:e1:22:3b:30:02:cf:01:89:fc:
75:30:c0:9a:f3:04:5a:87:37:fc:56:0b:9b:d8:8c:
2b:ee:27:35:20:68:1c:92:8f:51:9e:3a:bb:8f:00:
9b:16:e5:72:b6:70:71:a8:25:92:b6:0b:fc:c2:72:
80:93:cc:1d:91:cd:be:af:bd:01:a6:69:3b:92:e7:
aa:ea:35:b4:12:7a:10:9b:ad:9b:e5:60:c9:e5:10:
0b:91:6e:5b:68:b9:0a:7e:d1:35:29:be:ed:8a:b4:
39:3a:39:ff:58:5b:7b:8f:ab:b1:3b:dd:a4:ee:d8:
81:36:00:f2:12:1b:c7:a1:c5:52:58:98:22:f8:23:
07:98:0d:7b:cb:03:eb:91:a7:08:36:38:b3:c4:ab:
d2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:41:CF:E2:02:84:13:B7:72:44:79:F2:7B:30:3B:AC:04:70:CE:0E
X509v3 Authority Key Identifier:
keyid:34:9C:02:B3:0A:DB:F1:0F:71:F9:BE:0F:46:44:42:44:98:26:3D:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJwCswrb8Q9x-b4PRkRCRJgmPfM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/813821-24f4-485f-9c4b-433403d30a83/1/7EHP4gKEE7dyRHnyezA7rARwzg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/813821-24f4-485f-9c4b-433403d30a83/1/NJwCswrb8Q9x-b4PRkRCRJgmPfM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.148.0-91.226.150.255
Signature Algorithm: sha256WithRSAEncryption
23:3d:0a:d6:b5:bd:3a:66:2e:6c:5b:7b:33:5d:5f:fe:d1:12:
81:75:f9:0e:92:18:47:9d:61:82:57:5a:bd:4d:b9:8f:c3:cd:
78:ca:14:1b:2d:93:ca:9d:33:2c:c0:b9:4f:f4:67:34:7d:37:
e8:10:c7:4d:b5:0c:49:33:51:89:22:35:5e:32:a5:32:7b:3f:
ae:d3:be:af:d6:f2:fa:8f:6d:4c:2f:66:f4:74:ed:36:12:c5:
c5:65:fa:6a:df:ea:97:21:6e:26:0f:df:fb:bc:d9:ca:91:0b:
4e:70:81:2e:9c:3b:01:5f:f5:a7:2e:0d:b8:e3:80:ef:7f:72:
12:f0:3c:bc:b3:c8:43:f0:66:dd:4d:d1:27:a2:70:01:bf:43:
02:01:fb:ad:a3:ab:27:b8:78:3d:8a:fe:3d:cd:18:07:a6:21:
c8:0d:8f:ee:3c:a5:ab:87:b5:05:fd:b3:f1:21:46:57:7d:a3:
85:88:ed:5b:72:90:25:d7:f4:55:67:e1:8b:ea:92:a5:d5:91:
82:f4:08:77:2c:fc:98:75:f8:e7:a0:4d:f3:d3:d5:5f:ba:05:
9c:41:44:61:58:fb:c9:1e:1b:db:66:c5:ec:5e:b6:89:30:88:
af:79:20:d5:03:b9:c9:f1:b5:f0:4f:35:41:de:23:34:20:11:
ad:11:fa:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:29 2025 by rpki-client